General

  • Target

    0bfc6ffc04279c193cc4ca92513ef3694a04f53563bbddacd95618077467d3db

  • Size

    300KB

  • Sample

    240901-gz4czstgnh

  • MD5

    9bd64aeff5766bf19965d7c7d1af15ed

  • SHA1

    f9c5de814063857b1b4345ff366f629068f44507

  • SHA256

    0bfc6ffc04279c193cc4ca92513ef3694a04f53563bbddacd95618077467d3db

  • SHA512

    6f83f0edc85ffca4dd6c3f60b1d7921023f53e898c23f535061621eed7705e083fa52e8bad1f4fe2cfc982d308a42f28020de7e89b920389529601b81ded2070

  • SSDEEP

    6144:reiQL/push3VLVTmuTjNrXHkJbG+5D02AufpQL1qltanmmLU:r1yxrlMu/NjmioD0z1qltgmmLU

Score
10/10

Malware Config

Targets

    • Target

      0e8392e4efabec3b3db21088b8b4651a19050facec560c350f0ff29f29c78414

    • Size

      432KB

    • MD5

      0302ab429e1a3372cadf317c054f0618

    • SHA1

      bfea5c8591fcc1bcbb813fdfdc173c79e88e3761

    • SHA256

      0e8392e4efabec3b3db21088b8b4651a19050facec560c350f0ff29f29c78414

    • SHA512

      60c1f065effe96fbb1dceea7f22d41389b3f828953552e090642c91209596b772ae8d218b9f84336e1f763b8c17be11140557a628802e6434de8df88c62a1b22

    • SSDEEP

      12288:dUCmZiC9BZytUNqC7y7nO3N1BpubQ82EHOYXNfVW:PC9BwvqenO3NdubQ89OYXNQ

    Score
    10/10
    • Expiro, m0yv

      Expiro aka m0yv is a multi-functional backdoor written in C++.

    • Expiro payload

MITRE ATT&CK Matrix

Tasks